38442127d7492d0ebe975cc62875b9264014993b2588c542d803a464b97ba041

Analysis

max time kernel
2771917s
max time network
132s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
23-11-2022 15:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

38442127d7492d0ebe975cc62875b9264014993b2588c542d803a464b97ba041.apk
Size

487KB
MD5

fd563fa52965b953fa28a92a50ff4e00
SHA1

d9ce7ee332f8afab092a7a29c7be750b10d25b2f
SHA256

38442127d7492d0ebe975cc62875b9264014993b2588c542d803a464b97ba041
SHA512

cf81ad9e1d804010d5d84533c9d8a552f91a18539a0fd22a5c9334798d8e1874e2ef4aa2e566d4b92781b5c764f650fcd6c1a777632c997b71403fe4a46ec2b6
SSDEEP

12288:hLV+Jej2+V3SeplK5sZbFcgKZGJX0sFLcj+nEnSZ6:h3jZVCslKKZpujtnSZ6

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.c101407840439

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.c101407840439

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.c101407840439

com.c101407840439
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4104

cat /sys/class/net/wlan0/address
2⤵
PID:4165

.Fservice
1⤵
PID:4235

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.c101407840439/databases/cone.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.c101407840439/databases/cone.db-journal

Filesize
524B

MD5
99cf3bee36a1b72f7aa21a97c4a2466e

SHA1
93d5f50b9d47c14a94b211c1f88a47eb14bffb7e

SHA256
3eed78e305be6345f4d4ca2cde4b1391b21f2481658e459c7de68e935580e1b4

SHA512
d96dc54c42df3dfe9426ea1a552bdac552c3a2eefe0d6d8c9af85b75086983a4831a2adf44d55e8d28cd6ff124e867834582a00e33833ef84e4a9a1d2393e74c

Download Submit
/data/user/0/com.c101407840439/databases/cone.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.c101407840439/databases/cone.db-wal

Filesize
48KB

MD5
38c4f97cc093c42e1435b32bf6502d46

SHA1
e66edfefd7b03e20c25adb5f4b0bf1b9621e1860

SHA256
447e7b21b944d8799f6bec25fb97ee783e0df073ad1865f225ef21567c3cbdee

SHA512
c51d1fb5ebe2d9a22c9852ba470cb94a28b42554b1a43b5d0bdd587dec5967bba62d0b6de076df41990d883f0b4c617e67355083ae9914a6cb3e6e49c2be7275

Download Submit
/data/user/0/com.c101407840439/files/b1/main/aknfile_standalone_ptl.dat

Filesize
11KB

MD5
157f79eb580a2704c1919392e73a1209

SHA1
61fea8637e872d55efa60d41788faa432cb1044c

SHA256
c4339afdd95f3c9daf32f8d8401e65475c08d70cc3652f07a8973469bfa395f8

SHA512
c7f8e62579837055f534ec2ab784c30ead43defa6e2aa14903aaf5613381c454b26a701fe424f25b374c3d32b2b32f45d12b6202644251a991e3979f7e17def5

Download Submit
/data/user/0/com.c101407840439/files/b1/yong.dat

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.c101407840439/files/vs_filter.txt

Filesize
3B

MD5
cb70ab375662576bd1ac5aaf16b3fca4

SHA1
4af7f9edc0f545f4de769f2e9e763df919915cab

SHA256
72440a20f54075ac43f51a2cf0dbb2a14366b38a5c01b110ae174abc1cb44238

SHA512
7d5445ee5559645bd72db237a0b448bec64c33c70be214e974da7ad0f523278cbb0c77c4a690ff751b68c318437ece2aef6eb29518a41c5ec8037218ed6fbf0d

Download Submit
/data/user/0/com.c101407840439/files/vs_num.txt

Filesize
17B

MD5
146be72ba67488b3a8a8ae91d850af6d

SHA1
00b0dbeef6f0b954f09bbdbf3cf2f4b224428712

SHA256
bd0b35b52e544ac4e8fcac83924457afc491646441db2f6243df40ce9bb94992

SHA512
ead4521864bb3e6e4ca729ccd8842e53a39eeb3b886320f172dff53cb2132f484d05d080c13646ee0df3f768b5a001e7bff3c66557adf98fe2ff9cf4086eaf89

Download Submit
/data/user/0/com.c101407840439/files/vs_ver.txt

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.c101407840439/shared_prefs/C_UPDATE_DICT.xml

Filesize
118B

MD5
5971978486607a591470c8e1dbb59c94

SHA1
ae12339d4caf99120ea09a8be074388914a3ed2b

SHA256
f278940670bbab7795faafdade478371350d16b60c73fd27464bdfc1dfc8b7a7

SHA512
26af7225644dffaee834a9285acb8cb3cb64978085836d30bdd57eafba5452f94a3ebf70cdf0cb73d171ea113e3f871ee9b0950f885ecf1438fadaf2e59aa06b

Download Submit
/data/user/0/com.c101407840439/shared_prefs/com.c101407840439_preferences.xml

Filesize
113B

MD5
a0612884123fb56858071ab03c71d4fb

SHA1
7911eae1bde7a340d281cdc0a714ac029c229cfc

SHA256
d08de94137035d241fe64d9040fa90064c193dbdc15d7ea30fa41c4308d4297f

SHA512
b11f2ea07460f773051870c59335d5ee1613dd0eb3f65e3abe59e93e5446e177c0e1af831ca1b5f5a7f79e23c51cba3f8f1eb0a228115d0f0f13d2c73b5d8407

Download Submit
/data/user/0/com.c101407840439/shared_prefs/com.c101407840439_preferences.xml

Filesize
157B

MD5
3b7a3f99d8db374f20a7426eb92c848a

SHA1
525da2e8d5ecc2893e386824a3f2b131325ff246

SHA256
fe0c7a4d5c9fce82e74280ed2ba69fc88552a568777d005fa8eb46d4cf684e08

SHA512
cb8f496f078c4e5b435b15de7262b947009cd40f551da2d63c1088e0fd700c0a53d9a2cebbb926ee573c09d16ca774bf0fed6b7e810171d6236efcb5fafa46e8

Download Submit
/data/user/0/com.c101407840439/shared_prefs/com.c101407840439_preferences.xml

Filesize
209B

MD5
2b96e1dc263d0648b6ec47bc4d821873

SHA1
34cc9e78eb8ffd9d5d41d1f50f43ee1c96cf27c3

SHA256
dc6b57a37df22c75f619fb1fca0ae8adf82666eb59f92748c5b856f521c81267

SHA512
936e205335de896a0fc27ad5660d906857ce1f1e0479a21f67220574d032dadc13b7eb80cf51da45fc43e5b8770bb265d2ee8828447ce3a7f43630eeac3c4a29

Download Submit
/data/user/0/com.c101407840439/shared_prefs/com.c101407840439_preferences.xml

Filesize
261B

MD5
b636b15707a0d5a0f744b9d3d46c6f1f

SHA1
f8bf032b18314f13c27d519b8eb5db00271fad34

SHA256
cbb569e4c8e766fd08e38c56d7a251ebc6f84ce511ca4fab9302cdab5758b6c9

SHA512
7487fdbc0610abe324dbe16793ed7c9abb432a3b774446003a5e3b48171cd7bc35062c434d2dff2281f6d12d1384b76830ba1302c0b31e113faa806ed00f10a1

Download Submit
/data/user/0/com.c101407840439/shared_prefs/com.c101407840439_preferences.xml

Filesize
314B

MD5
a08abb37ff24717714f70e5b701f7396

SHA1
35af719781f29359f39b9ec43ae87228a0a5c658

SHA256
bb09b9a03c17afd5f38c157a438319730a0f0270a97d8f7434bab8f4bf2d741a

SHA512
01bc9a1a19b80cf6fde9bfb6221cc2d84fdd26374902080b1a776be4a3f370a79e3c0bc1daa0f5c3a16351dad6d0956564c137897ebbd4cc4bf0b1aaf3e74fbf

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads